search

owasp-modsecurity / ModSecurity

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.
https://www.modsecurity.org
Apache License 2.0
8.06k stars 1.58k forks source link

rx: regex error 'MATCH_LIMIT' for pattern #3237

Open Lathanderjk opened 3 weeks ago

Lathanderjk commented 3 weeks ago

Describe the bug

I don't see any real problem just noticed logs entries.

Logs and dumps SecDebugLog & SecDebugLogLevel 3

[172440041140.141021]` [/vystrelovaci-rukavice-3-sipky/] [1] rx: regex error 'MATCH_LIMIT' for pattern '[\"'`][\[\{].*[\]\}][\"'`].*(::.*jsonb?)?.*(?:(?:@|->?)>|<@|\?[&\|]?|#>>?|[<>]|<-)|(?:(?:@|->?)>|<@|\?[&\|]?|#>>?|[<>]|<-)[\"'`][\[\{].*[\]\}][\"'`]|json_extract.*\(.*\)

Server:

Rule Set:

airween commented 3 weeks ago

Hi @Lathanderjk,

thanks for reporting. We have to investigate this issue, but after a first sight I think it's more a CRS issue than ModSecurity.